CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Disa: >> Srr For Solaris Security Vulnerabilities

CVE-2009-4211

The U.S. Defense Information Systems Agency (DISA) Security Readiness Review (SRR) script for the Solaris x86 platform executes files in arbitrary directories as root for filenames equal to (1) java, (2) openssl, (3) php, (4) snort, (5) tshark, (6) vncserver, or (7) wireshark, which allows local users to gain privileges via a Trojan horse program.

CVSS Score

9.3

EPSS Score

0.004

Published

2009-12-04

Page 1

Vulnerabilities

Vulnerable Software

Disa: >> Srr For Solaris Security Vulnerabilities

Products

Pricing

Contact Us